Default configuration

From Halon Security

Jump to: navigation, search

The default configuration contains several entries in order for users to quick-start the deployment of a new, or factory reset, appliance. The entries of the default configuration cannot be removed, but changed as desired. The configuration revision, as shown when displayed for example in the Web Administration, is the configuration that overrides the default configuration.

VSP (VMware) users are provided with a quick-start "wizard" during the installation, which, among many things, assign an IP address of choice, configure mail domains, et cetera.

In short, the default configuration;

  • Username and password is admin
  • Assigns the address 169.254.1.1/16 (netmask 255.255.0.0) to the Ethernet interface ether1
  • Makes the Web Administration available on HTTP and HTTPS, on their standard ports
  • Listens for mail (SMTP) on all addresses, port 25
  • Accept mail to the domain example.org
  • Sends mail to 192.168.0.100 when scanned
  • Uses RAM memory for storage

Below the default configuration is shown, for reference purposes only. 

version="8"
system_timezone="Europe/Stockholm"
service_ssh_aclflow="disabled"
service_ssh_key="pki:1"
service_ftp_aclflow="disabled"
acl_flow__1="GlobalView|,,|script "",whitelist "" {acl_allow},blacklist "" {acl_block},globalview "tempfail" {acl_block},dnsbl "" {acl_block},acl_allow"
acl_flow__2="Block All|,,|script "QmxvY2soKTs=",whitelist "" {acl_allow},blacklist "" {acl_block},globalview "no" {acl_block},dnsbl "" {acl_block},acl_allow"
config_user__1="Administrator|admin|$1$I5JOIt3W$veioAZeWwr7BWDaY7dBRn/|"
http_server__1="Web Administration|any|80|disabled|disabled|admin"
http_server__2="SSL Administration|any|443|pki:1|disabled|admin"
auth_flow__1="Authenticate Users|auth_rate "yes" "saslusername" "3" "60" {auth_reject},auth_ldap "" {auth_accept},auth_smtp "yes" "mailtransport:1" {auth_accept},auth_file "" {auth_accept},script "",auth_reject"
mail_domain__1="yes|Example|example.org|mailserver:1|mailtransport:1|mailflow:1||disabled"
mail_flow__1="Incoming|mail_whitelist "" {deliver},scan "rpd",if result == 100 {delete "UmVqZWN0ZWQgYnkgU3BhbSBGaWx0ZXIgKCRtZXNzYWdlaWQp"},scan "sa",if result > 17 {delete "UmVqZWN0ZWQgYnkgU3BhbSBGaWx0ZXIgKCRtZXNzYWdlaWQp"},script "Ly8gT3V0YnJlYWsgKFJQRCkgYW5kIFBhdHRlcm4gQW5hbHlzaXMgKFNBKSBjb21iaW5lZAoKaWYgKFNjYW5SUEQoKSA9PSA1MCBhbmQgU2NhblNBKCkgPiA1KSB7CglSZWplY3QoIlJlamVjdGVkIGJ5IFNwYW0gRmlsdGVyICgkbWVzc2FnZWlkKSIpOwp9CgpTZXRIZWFkZXIoIlgtSGFsb24tSUQiLCAkbWVzc2FnZWlkKTs=",scan "kav" "reject",scan "clam" "reject",deliver"
mail_flow__2="Outgoing|scan "sa",if result > 20 {delete},scan "kav" "reject",deliver"
mail_server__1="yes|internal-hostname|Default Incoming|any|25|aclflow:1||disabled|10485760|require_tls|disabled|inline|"
mail_transport__1="yes|internal-hostname|192.168.0.100|25|60,120,180|30|disabled|auto|no|Default Transport||inbound||"
net_addr__1="ether1|ip4|169.254.1.1/16|Primary Address"
rcpt_flow__1="SPF and Recipient|script "",rcpt_rate "no" "" "" "" {rcpt_reject},rcpt_trusted "" {rcpt_accept},rcpt_blacklist "yes" {rcpt_reject},rcpt_auth "" {rcpt_accept},rcpt_spf "yes" {rcpt_reject},rcpt_ldap "" {rcpt_accept},rcpt_smtp "yes" "transport" {rcpt_accept},rcpt_file "" {rcpt_accept},script "",rcpt_reject"
rcpt_flow__2="Authenticated Only|script "",rcpt_rate "yes" "saslusername" "100" "3600" {rcpt_reject},rcpt_trusted "" {rcpt_accept},rcpt_blacklist "yes" {rcpt_reject},rcpt_auth "yes" {rcpt_accept},rcpt_spf "" {rcpt_reject},rcpt_ldap "" {rcpt_accept},rcpt_smtp "no" "transport" {rcpt_accept},rcpt_file "" {rcpt_accept},script "UmVqZWN0KCJBdXRoZW50aWNhdGlvbiByZXF1aXJlZCIpOw==",rcpt_reject"
pki__1="Default Self-Signed|x509+privatekey|LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUNhekNDQWRTZ0F3SUJBZ0lKQU40eHN1b1NsN1o3TUEwR0NTcUdTSWIzRFFFQkJRVUFNQzR4RnpBVkJnTlYKQkFvVERraGhiRzl1SUZObFkzVnlhWFI1TVJNd0VRWURWUVFERXdwSVlXeHZiaUJJTDA5VE1CNFhEVEE0TURReApNREF6TWprMU9Wb1hEVEk0TURRd05UQXpNamsxT1Zvd0xqRVhNQlVHQTFVRUNoTU9TR0ZzYjI0Z1UyVmpkWEpwCmRIa3hFekFSQmdOVkJBTVRDa2hoYkc5dUlFZ3ZUMU13Z1o4d0RRWUpLb1pJaHZjTkFRRUJCUUFEZ1kwQU1JR0oKQW9HQkFNSzlHdjM5bW05M0lEcVdFLzIyZGZ6UWtFS1lndDBEb2V3QWw5enY0Zk9zaXJ2NlZGRDIvMUhWR1J3bQp0NklkMkxLY1c1TVh1blg2LzhTVjJ2Z0xWcE9yaXpXUGVmNnYrcEJReDRONmFtS0NCWEN2amZ6SEsvS1AxdlFFCndDcjRRK2l0aXJYc29NZEY5SitRWExVVXArZWdEd29uQ2h2NGJpNmVFc0hmcEdPTkFnTUJBQUdqZ1pBd2dZMHcKSFFZRFZSME9CQllFRkI1cmFlTmpkRmtob1lxYjErQnkrVlVHMkI5ZU1GNEdBMVVkSXdSWE1GV0FGQjVyYWVOagpkRmtob1lxYjErQnkrVlVHMkI5ZW9US2tNREF1TVJjd0ZRWURWUVFLRXc1SVlXeHZiaUJUWldOMWNtbDBlVEVUCk1CRUdBMVVFQXhNS1NHRnNiMjRnU0M5UFU0SUpBTjR4c3VvU2w3WjdNQXdHQTFVZEV3UUZNQU1CQWY4d0RRWUoKS29aSWh2Y05BUUVGQlFBRGdZRUFaZ1RjTmROV251Z3BqZnZUVFpPL0VseHNJQ290cEh4UE9lV3VMMjhEYUQwLwpSWk9lUE4vZjFrTDB5QUxobWpjUzUyVmJCTEhtcUJ4ZzU3dm5KL3hucU9IRklEeHVFb0hMMFB1cVRBRDV1VTY4CmRNWmhlNzA2eWJmTjdBUTFWOFFBT0tObU5TOThHdlV2a1IxUlFCaEdYcWpXWDJDUGVQelBWZEpyRkFPenJYUT0KLS0tLS1FTkQgQ0VSVElGSUNBVEUtLS0tLQotLS0tLUJFR0lOIFJTQSBQUklWQVRFIEtFWS0tLS0tCk1JSUNYQUlCQUFLQmdRREN2UnI5L1pwdmR5QTZsaFA5dG5YODBKQkNtSUxkQTZIc0FKZmM3K0h6cklxNytsUlEKOXY5UjFSa2NKcmVpSGRpeW5GdVRGN3AxK3YvRWxkcjRDMWFUcTRzMWozbityL3FRVU1lRGVtcGlnZ1Z3cjQzOAp4eXZ5ajliMEJNQXErRVBvcllxMTdLREhSZlNma0Z5MUZLZm5vQThLSndvYitHNHVuaExCMzZSampRSURBUUFCCkFvR0FiV2UyaVdsMzRSV0pHc0VFSEM3dEhJckQ4VllqZHkyNlE0K1Z3ZjlXN3dKSnN4QVJYS2RYaTg3djIzdjUKQVBCSnRSYlk3OHVONndpSHR4Y0Z2UU1Kc05LdlREVVdiL3AwMkJNZnZmQzhRbnVSTk1mMEJORHYvWkdvcTdrQQpWMW81N0Ewc0szUjIwMDhGM2tlOExLUzdGK0tndDkyd082a0ZZUW9ndk83Y0pyVUNRUUQyL2I2MmV2SHYxWUpsCm1IMEhWeXNNTXh2cVNxd0VSZzZKTlNxRDZWdU5kYVhUb1JSTGJrMllua0xtNXNiclFVQnJBdFRPTkNDaVVnUE4KcnZQUmxDRWJBa0VBeWRkMVJncWxselVGaFE5d0JQNnU0TWZkVXpWY3o2RlRDQ3E2dXdjYVV2dXBieUtKYUlCQwpZM0M3ZVpLYUFReEozM3pYcXRhSzVFd1dJQ0owTU9zQWR3SkJBT2tPNWpZcUxNQ3lKeWpXaXFPeWpOd21IZUVtCk5NcVRrSVBIdHlaaHZCSHZRVnBBVkhZWXp2K0QxbjBxcGVpMjJhSWdPYzJaUW5Ib0VjNnpsejNiR0tFQ1FITFkKbjZmczR1KzRnWjJHZlN5NlpYTU5CZ2dVY3V6SlZGOXZRTFN1Zy9IM3RCN0NQZ0V5Q1pSZlRxME1GNGpGSHp1RQo0NG9YYlF3ZHB2RTk2WEwwSkYwQ1FBSWV4dlJYNjUrMndrQU1JR042bXgvZzRPdUdhbVVRUXBJSk5KSEVPTHpKCnBUS2Z5UUpjTmpSN1ZNY2x1ZXRQVyszU1RXMk95dVFLSUFrUUJ0c1QyaEU9Ci0tLS0tRU5EIFJTQSBQUklWQVRFIEtFWS0tLS0t"
system_contact_mail="postmaster@example.org"
system_contact_name="Postmaster"
system_default_transport="mailtransport:1"
system_location="Example Company"
system_name="mail.example.org"
system_error_notify="systemcontact"
service_dnscache_enabled="yes"
service_dnssec_enabled="no"
Retrieved from "http://wiki.halonsecurity.com/Default_configuration"
Personal tools